Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2012-2137

Published: 18 June 2012

Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to Message Signaled Interrupts (MSI), irq routing entries, and an incorrect check by the setup_routing_entry function before invoking the kvm_set_irq function.

From the Ubuntu Security Team

A flaw was found in how the Linux kernel's KVM (Kernel-based Virtual Machine) subsystem handled MSI (Message Signaled Interrupts). A local unprivileged user could exploit this flaw to cause a denial of service or potentially elevate privileges.

Notes

AuthorNote
jdstrand 
linux-armadaxp is maintained by OEM

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian 		hardy Not vulnerable

lucid Not vulnerable
(2.6.32-44.98)
natty Ignored
(reached end-of-life)
oneiric
Released (3.0.0-26.43)
precise
Released (3.2.0-29.46)
quantal Not vulnerable
(3.5.0-1.1)
raring Not vulnerable
(3.7.0-0.5)
saucy Not vulnerable
(3.9.0-0.2)
trusty Not vulnerable
(3.11.0-12.19)
upstream
Released (3.5~rc2)
utopic Not vulnerable
(3.13.0-24.46)
vivid Not vulnerable
(3.16.0-23.31)
wily Not vulnerable
(3.19.0-15.15)
xenial Not vulnerable
(4.2.0-16.19)
yakkety Not vulnerable
(4.4.0-21.37)
zesty Not vulnerable
(4.8.0-22.24)
Patches:
Introduced by

46e624b95c36d729bdf24010fff11d16f6fe94fa

Fixed by f2ebd422f71cda9c791f76f85d2ca102ae34a1ed
linux-armadaxp
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

natty Does not exist

oneiric Does not exist

precise Does not exist
(precise was released [3.2.0-1606.9])
quantal Not vulnerable
(3.2.0-1606.9)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-aws
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Not vulnerable
(4.4.0-1002.2)
upstream
Released (3.5~rc2)
xenial Not vulnerable
(4.4.0-1001.10)
yakkety Does not exist

zesty Does not exist

linux-ec2
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Not vulnerable
(2.6.32-349.55)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-flo
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Does not exist

trusty Does not exist
(trusty was ignored [was needed now end-of-life])
upstream
Released (3.5~rc2)
utopic Ignored
(reached end-of-life)
vivid Ignored
(reached end-of-life)
wily Ignored
(reached end-of-life)
xenial Ignored
(abandoned)
yakkety Ignored
(abandoned)
zesty Does not exist

linux-fsl-imx51
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Ignored
(reached end-of-life, does not affect buildd)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-gke
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
xenial Not vulnerable
(4.4.0-1003.3)
yakkety Does not exist

zesty Does not exist

linux-goldfish
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was ignored [was needed now end-of-life])
upstream
Released (3.5~rc2)
utopic Ignored
(reached end-of-life)
vivid Ignored
(reached end-of-life)
wily Ignored
(reached end-of-life)
xenial Ignored
(abandoned)
yakkety Ignored
(abandoned)
zesty Ignored
(abandoned)
linux-grouper
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (3.5~rc2)
utopic Ignored
(reached end-of-life)
vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-hwe
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
xenial Not vulnerable
(4.8.0-36.36~16.04.1)
yakkety Does not exist

zesty Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
xenial Not vulnerable
(4.8.0-36.36~16.04.1)
yakkety Does not exist

zesty Does not exist

linux-linaro-omap
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

natty Ignored
(abandoned)
oneiric Ignored
(abandoned)
precise Does not exist
(precise was ignored [abandoned])
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-linaro-shared
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

natty Does not exist

oneiric Ignored
(abandoned)
precise Does not exist
(precise was ignored [abandoned])
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-linaro-vexpress
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

natty Ignored
(abandoned)
oneiric Ignored
(abandoned)
precise Does not exist
(precise was ignored [abandoned])
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-backport-maverick
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Ignored
(reached end-of-life)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-backport-natty
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Ignored
(reached end-of-life)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid
Released (3.0.0-26.43~lucid1)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-quantal
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

oneiric Does not exist

precise Does not exist
(precise was not-affected [3.5.0-18.29~precise1])
quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-raring
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

oneiric Does not exist

precise Does not exist
(precise was not-affected [3.8.0-19.30~precise1])
quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-trusty
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Not vulnerable
(3.13.0-24.46~precise1)
saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-utopic
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

trusty Does not exist
(trusty was not-affected [3.16.0-25.33~14.04.2])
upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-vivid
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

trusty Does not exist
(trusty was not-affected [3.19.0-18.18~14.04.1])
upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-wily
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist
(trusty was not-affected [4.2.0-18.22~14.04.1])
upstream
Released (3.5~rc2)
vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Not vulnerable
(4.4.0-13.29~14.04.1)
upstream
Released (3.5~rc2)
vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-maguro
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-mako
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was ignored [was needed now end-of-life])
upstream
Released (3.5~rc2)
utopic Ignored
(reached end-of-life)
vivid Ignored
(reached end-of-life)
wily Ignored
(reached end-of-life)
xenial Ignored
(abandoned)
yakkety Ignored
(abandoned)
zesty Does not exist

linux-manta
Launchpad, Ubuntu, Debian 		lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was ignored [was needed now end-of-life])
upstream
Released (3.5~rc2)
utopic Ignored
(reached end-of-life)
vivid Ignored
(reached end-of-life)
wily Ignored
(reached end-of-life)
xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-mvl-dove
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Ignored
(reached end-of-life)
natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-qcm-msm
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Ignored
(abandoned)
natty Ignored
(abandoned)
oneiric Ignored
(abandoned)
precise Does not exist
(precise was ignored [abandoned])
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

linux-raspi2
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
vivid Does not exist

wily Not vulnerable
(4.2.0-1008.12)
xenial Not vulnerable
(4.2.0-1013.19)
yakkety Not vulnerable
(4.4.0-1009.10)
zesty Not vulnerable
(4.8.0-1013.15)
linux-snapdragon
Launchpad, Ubuntu, Debian 		precise Does not exist

trusty Does not exist

upstream
Released (3.5~rc2)
wily Does not exist

xenial Not vulnerable
(4.4.0-1012.12)
yakkety Not vulnerable
(4.4.0-1012.12)
zesty Not vulnerable
(4.4.0-1029.32)
linux-ti-omap4
Launchpad, Ubuntu, Debian 		hardy Does not exist

lucid Does not exist

natty Ignored
(reached end-of-life)
oneiric
Released (3.0.0-1216.29)
precise Does not exist
(precise was released [3.2.0-1417.23])
quantal Not vulnerable
(3.5.0-1.1)
raring Not vulnerable
(3.5.0-1.1)
saucy Not vulnerable
(3.5.0-223.34)
trusty Does not exist

upstream
Released (3.5~rc2)
utopic Does not exist

vivid Does not exist

wily Does not exist

xenial Does not exist

yakkety Does not exist

zesty Does not exist

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading